Trusted by 7 of the Largest Financial FirmsTrusted by 4 of the Top Telco ProvidersTrusted by 8 of the Largest RetailersTrusted by 6 of the Leading Global Tech CompaniesTrusted by 7 of the Leading Travel & Transportation Groups

Resources

Get to know us better! Gain valuable insights into how we think by visiting our blog, or take a look at the industry events we're frequenting on our events page. You can also geek out with us by attending one of our security management webinars, or dive head first into the products and solutions we provide in our Resource Library. There's lots to keep you busy!

Black Hat USA 2012: Liveblog

Jul 25, 2012Josh Mayfield

FireMon is at Black Hat USA 2012 & Bsides in Las Vegas this week. Black Hat has grown every year since its inception 15 years ago, and this year proves to be the largest conference yet. Today's keynote from Shawn Henry focused on changing the security paradigm and taking back your network. He noted that intelligence is the key to winning the battle against attackers. The more intelligence you have about your organization and threats facing it, and knowing what your attackers are focused on, the better prepared you will be to defend your network.

FireMon's Security Manger 6.0 with Risk Analyzer add-on is a key tool in arming yourself with that intelligence. Security Manager with Risk Analyzer will map your entire network, highlight what assets are at risk and how they could be pivoted off of to exploit multiple layers within your environment. Security Manager 6.0 also provides a prioritized list of remediation actions that will reduce the greatest amount of risk with the least amount of effort. Security Manager 6.0 automates the analysis of your infrastructure, and provides real-time updates to your risk posture when changes occur to your infrastructure. FIreMon gives you the intelligence you need to understand your network, and know exactly what your attackers will focus on. To see the worlds first Security Posture Management solution in action, please visit us at booth 517 a Black Hat.

Events

Webinars

On Demand Webinars

Nov 06, 2018AWS Network Security Deep Dive

Running workloads in the cloud makes provisioning and setup easier—just spin up a VM. But you might be surprised by how many firewalls you’ll end up with in the cloud if you follow best practices. Cloud providers are clear on this point. Amazon says, “Security and Compliance is a shared responsibility between AWS and the customer… The customer assumes responsibility and management of the guest operating system (including updates and security patches), other associated application software as well as the configuration of the AWS provided security group firewall.” In short, cloud security is in your court.

The cloud is a notable business advantage, but it does bring numerous security concerns including: a lack of visibility across cloud or between on-premises and cloud environments, monitoring security controls and changes within cloud and multi-cloud environments, and maintaining compliance by monitoring cloud traffic for suspicious and non-compliant behavior. It becomes increasingly complex in hybrid environments because now you're managing security for on-premise, cloud, virtual, container environments, and more.

Healthcare IT organizations, already burdened with budget constraints and the scarcity of technically proficient staff, must also contend with significant blind spots within their own networks. These blind spots occur everywhere, from endpoints into the cloud, and every blind spot increases the opportunity for attacks such as ransomware to be successful. Lumeta has been deployed at some of the largest enterprises and government agencies based on our ability to eliminate 100% of your IP network and connected device visibility gaps, improve your overall security posture, and reduce the risk of patient data theft.

Join our guest, Forrester's Chase Cunningham, with FireMon's Vice President, Product Strategy at FireMon, Matt Dean for a look at the future of network security, which will ultimately enable each business team to fully own their security policies.

Whether you’re monitoring 100 devices or 15,000, on one continent or around the world, we offer a FM appliance with the power and storage capacity to deliver FireMon’s high-performance, highly scalable firewall management and risk analysis solutions.

The full report walks through budget needs, staffing concerns, five-year firewall strategies, and more about how network security professionals at best-in-class businesses of all sizes see the evolution of firewalls.

Intent-based network security (IBNS) decouples intent from implementation. In this model, intent becomes the bedrock of policies and controls, and implementation serves as the device-specific enforcement of the declared security goal.

Migrations run the risk of cost overrun, delays and disruption of network service - often due to a lack of personnel and process to efficiently and effectively manage. To ensure a successful migration, consider these four key factors: 1) identifying and removing technical mistakes, 2) removing unused access, 3) refining and organizing what remains and 4) continuous, real-time monitoring.

Network Security Policy Management (NSPM) continues to be a difficult practice for organizations the world over. In the last 20 years, network security policies (e.g. firewall rules) have grown by more than 3,500%. Yes, you read that number correctly. Why is that?

Gartner research has uncovered a number of security policy challenges for enterprises. Among these challenges are the typical assessments necessary to fortify policy for compliance and improved security posture.

Welcome to the world of overflowing regulations and compliance standards, of evolving infrastructure and the ever-present breach. It's a world where 72% of security and compliance personnel say their jobs are more difficult today than just two years ago.

Firewall technology has come a long way since its initial, most rudimentary forms. Next-Generation Firewalls (NGFW) are the latest development, and organizations are accelerating adoption to the new technology. But NGFWs aren’t a fix-all solution.

Using Security Policy And Automation (SPOA) Tools To Reduce The Attack Surface

Attack surfaces have expanded greatly in the past several years, in part because of the amount of new applications coming online via Internet of Things and increasingly connected technology. Organizations have an admittedly tough time keeping up with all the new touchpoints and the rapid expansion of the attack surface. Complete defense is nearly impossible, and many companies struggle with visibility issues, mismatched or misaligned firewall policies, and an inability to comprehensively test the security configurations they do have

Forrester’s Zero Trust Model of information security helps teams develop robust prevention, detection and incident response capabilities to protect their company's vital digital business ecosystem. This report will help security pros understand the technologies best suited to empowering and extending their Zero Trust initiatives and will detail how Forrester sees this model and framework growing and evolving.

Oil and Energy Company Increases IT Operational Efficiency and Enhanced Rule and Policy Compliance with FireMon

This mid-sized US-based oil and energy company was seeking to improve both the operational efficiency of their IT organization and security operations. They needed to streamline their processes for proposing and implementing changes to their firewall rule base. At the same time, they needed to enhance the speed and efficiency with which they performed rule compliance audits post-change. Their ideal solution would need to effectively meet the needs of both their firewall administrators and security analysts.

The customer sought a data analysis tool to correlate application data with network and security data to spot service-impacting anomalies. They did not have an accurate picture of interoperability between applications and the underlying infrastructure.

This national insurance provider had three problems to tackle regarding their firewall policies. First, the number of rules under management was overwhelming staff and processes. They needed to increase visibility and effectiveness of their firewall change request/workflow ticketing process. And they also need help maintaining compliance PCI DSS requirements.

Each time this Global MSP engaged a new customer, they had to onboard the firewalls – sometimes hundreds per engagement – into their network. Part of the onboarding process required assessing the policies against internal best practices – a manual, line-by-line process that took an average of 16 hours/firewall and was extremely error-prone.